Manager Security
Resume:
SAP Certified Consultant ( SAP Authorization and Auditing - C_AUDSEC_731)
Mohammed Eliasuddin (SAP Security Consultant)
Phone: +1-587-***-****
Email: ***********@*****.***
. Eliasuddin is a SAP Certified Security Consultant with extensive
experience in maintaining authorizations of different SAP Components
which include ECC 6.0, BI 7.0, HCM, APO/SCM, and SRM, CRM 7.0, GRC,
Solution Manager and implementation of Central User Administration.
. Above 7 years of SAP Security Authorizations including Netweaver 07
Products
. Implemented Full life cycle SAP implementations to ECC 6.0 (FI,SD, MM,
HR) and BI 7.0, HCM,CRM 7.0 - IC WebClient UI
. ECC 6.0: Implemented Security related to Finance, Sales, and Material
Management Areas by creating Master/ Derive Roles.
. CRM 7.0 : Designed Business Roles by working closely with Functional Team
and Created respective PFCG roles to provide access to logical links of
work centers in Business Roles, Assigned Business roles to the Business
Users in the Organization Structure, Created Business Partner and
associated them with user (employee)
. Analytical and creative problem solving capabilities in all SAP
environments.
. Portal EP 7.0 : Assigned Portal roles corresponding to backend roles
to user view and use in the portal, Created portal roles using portal
content which allow access to Iviews in Portal and Mapped the backend
roles of ECC 6.0, BI 7.0 roles to Portal groups and assigned portal
groups to users using User Management Engine.
. GRC 10.0: Performed user audits for customer systems and reviewed role
and profile using the GRC to identify and militate against potential
security risks. Expert in Configuring, Troubleshooting of Various
Components of GRC 10.0 ( ARM (Access Request Management ),ARA ( Access
Risk Analysis ), BRM (Business Role Management), EAM ( Emergency Access
Management)
. Solution Manager 7.0: Configured Roles related to different projects and
worked as team member to support CHARM.
. Expertise in Role-based Security (design and maintenance), Solution
Manager, BI Security, Portal Security / User management, CTS, Single
Sign On
. BI (Business Intelligence) 7.0 : Created analysis authorization objects
for authorization relevant characteristics and Key figures and Secured
the Reports at granular level by using (Navigation Attribute Info
Provider)
. Expert in resolving R/3,BI, CRM, HR and portal security issues, trouble
shooting and Active Directory Access Request Processing.
Professional Experience
National Grid, Syracuse, NY
Jan 2011 - Feb 2014
Role: SAP SECURITY Consultant
National GRID WITH 26,000 EMPLOYEES provides electricity generation,
transmission, distribution, natural gas and renewable energy products
to residential and commercial customers in Eastern part of USA and
Across UK.
Responsibilities
ESS/MSS & GRC 10.0
. Created backend roles for HR Employer self service ESS and Manager
self service MSS
. Implemented GRC 10.0 Access Control ( ARA, ARM, EAM, BRM)
. Created Connector, Associated Connector with connector type and
Generated Risk by using Rule sets, Sync the Data from ECC to GRC
(Auth, Profile and Users) and Configured Mitigation Controls in ARA.
. Created FF Id's for Functional folks in EAM and Configured FF Controls
and Monitors.
. Configured MSMP Workflows for different types of User requests in ARM
. Expert in Creating Users like Requesters, coordinators, Role Approvers
and Final approvers related to workflow of CUP for user provisioning
in SAP Backend Systems
. Worked closely with Team members to implement GRC 5.3 Support packs
13.
. Gathered the security requirements for PFCG roles as per the business
requirements
BOBJ 4.0 / BI 7.0 / EP7.0
. Created analysis authorization objects for authorization relevant
characteristics and Key figures related to Sales chain & Finance
reports related to District Managers, Directors and VP
. Created BI 7.0 Roles for Various Department and sync the roles/users
with BOBJ 4.0
. Restricted Access to users by Creating Access Levels, Groups, personal
folders for various Department in BOBJ 4.0 and Assigned users into
Group.
. Configured users to login BOBJ 4.0 through SSO and run the reports in
BOBJ 4.0 and replicate the data as per Roles in BI 7.0
. Assigned Portal roles corresponding to backend roles to user view and
use in the portal
. Created portal roles using portal content which allow access to
IView's in Portal
. Map the backend roles of ECC 6.0, BI 7.0 roles to Portal groups and
assigned portal groups to users using User Management Engine.
CRM 7.0
. Created PFCG roles for the Business Roles in CRM 7.0 IC WebClient UI
and assigned them in Org Structure to various positions.
. Worked closely with the CRM BSA in creating the Business Roles, Org
Structure & Positions.
. Traced and Resolved Authorization issues for BSP Applications in Web
Client UI
. Created PFCG roles to provide access to logical links of work centers
in Business Roles
. Assigned Business partners to various positions within the
Organization Structure
. Creating Business Partner and associating them with user (employee)
Solution Manager 7.0
. Created Roles in Solution Manager for different projects to view their
specific projects
. Created Project in Solution Manager and uploaded documents related to
various projects as per ASAP Methodologies
. Worked with CHARM within the team to coordinate and move transports to
production systems.
General Support
. Worked extensively with the PFCG tool to create roles for FI (AP,AR),HR, OM, APO, ESS and interfaces
. Worked with business leads in order to develop requirement role
matrices
. Created Roles in Solution Manager for designing various different
projects.
. Worked with process owners for SOD conflicts and assigned appropriate
roles to the users
. Analyzed the impact of SU24 changes to proactively avoid issues
TESORO SAN Antonio, TX Jan
2009- Dec 2010
Role: SAP Security Analyst
Tesoro Corporation is an independent refiner and marketer of petroleum
products. Tesoro, through its subsidiaries, operates seven refineries in
the western United States with a combined capacity of approximately 675,000
barrels per day
Responsibilities
HR /HCM (Structural Authorization) and ESS/MSS
. Developed reports for user access to sensitive info types for OM, PA,
Compensation and Benefit roles
. Worked as a BI-HR expert to redesign the global access
. Created PD Profiles According to business requirements and assigned to
users
. Worked with HR Functional specialists to help them understand what SAP
authorization objects are causing the conflicts and what all options
exist for mitigating the conflicts
GRC 5.3 (SOX/SOD)
. Configured Risk Analysis and Remediation in GRC 5.3 to update new
risks for the rule set
. Configured workflows in CUP (Compliance User provisioning) and
automated User Provisioning related to different types of User
requests (New Requests, Change Request, Delete Request, Lock and
Unlock).
. Recommend policy changes as per the Best Practices and Sox Compliance
. Ensured no SOD's existed at the role- and user- level
. Implemented enhancement to secure FF ID's
BI 7.0/EP 7.0
. Designed the Security Structure for SAP BI 7.0
. Created analysis authorization objects using for authorization
relevant characteristics and Key figures
. Designed and created portal roles in the EP6.0 and EP 7.0
CRM 7.0
. Created PFCG roles for the Business Roles in CRM 7.0 IC WebClient UI
. Worked closely with the CRM Customizing team in creating the Business
Roles
. Traced and Resolved Authorization issues for BSP Applications in IC
WebClient UI
General Support
. Coordinated with the offshore teams and monitored the progress of the
project
. Managed and coordinated daily tasks with the global offshore Teams
. Created and defined the deliverables for the Blue print phase
. Communicated technical and non-technical issues to the client
supervisors
. Reviewed the custom code and closed the security GAP's by comparing
with the Tech specs
. Experience in setting up users with AOD (Access on Demand) access.
. Responsible to prepare the deliverables for the role redesign project
. Develop and document policies to fill the GAP's in the security
architecture
. Created roles for SAP modules FICO,MM,QM,PM and HCM
Caterpillar Peoria, IL Jan 2008
- Dec 2008
Role: SAP Security Consultant
Responsibilities
CRM 7.0
. Created PFCG roles for the Business Roles in CRM 7.0 IC WebClient UI
. Worked closely with the CRM Customizing team in creating the Business
Roles and Org Structure
. Traced and Resolved Authorization issues for BSP Applications in Web
Client UI
. Created PFCG roles to provide access to logical links of work centers
in Business Roles
. Assigned Business roles to the Business Users in the Organization
Structure
. Creating Business Partner and associating them with user (employee)
. Maintained user parameter for CRM users in SU01 to access BSP in IC
WebClient UI
BI 7.0 /EP 7.0
. Created analysis authorization objects for authorization relevant
characteristics and Key figures
. Creating Portal roles for BI Portal (EP 7.0) to Publish Queries
. Assigned Portal roles corresponding to backend roles to user view and
use in the portal
. Created portal roles using portal content which allow access to Iviews
in Portal
. Map the backend roles of ECC 6.0, BI 7.0 roles to Portal groups and
assigned portal groups to users using User Management Engine.
. Created backend roles in BI for BOE crystal reports to access data
from SAP BI
. Created roles for BI Data ware house objects and BI Reporting layer
objects
. Implemented BI security at Infoarea, Infocube, InfoObject, DSO's,
MultiProvider levels
General/Support
. Created single, derived and composite roles as per the business
requirements
. mass maintenance of users
. Created OSS ID's for SAP Project team members
. Generated security audit reports
. Worked with business leads in order to develop requirement role
matrices
. Worked with process experts and head of departments for SOD conflicts
and assigned appropriate roles to the users
. Traced the transactions for required authorizations and adjusted the
SU24 for those t-codes
. Analyzed the impact of SU24 changes to proactively avoid issues
. Blueprinted and created the enterprise the performance management and
compensation management roles
Akzo Nobel Car Refinished Norcross, GA Jan 2006 - Dec
2007
ROLE: SAP Security Consultant
Responsibilities:
. Created single, derived and composite roles using the PFCG Profile
Generator
. Created position based roles for Position Based Access project
. Redesigned the SAP security model to identify and eliminate any Sox
issues to ensure compliance
. Created PFCG roles for the Business Roles in CRM 7.0 Web UI
. Worked closely with the CRM Customizing team in creating the Business
Roles
. Traced and Resolved Authorization issues for BSP Applications in Web
Client UI
. Created PFCG roles to provide access to logical links of work centers
in Business Roles
. Assigned Business roles to the Business Users in the Organization
Structure
. Created new PFCG roles using the SAP Delivered Reports for
Corresponding Business Roles
. Maintained user parameter for CRM users in SU01 to access BSP in Web
UI
. Identified and closed the GAP's in the security process
. Developed and implemented SAP HR role based authorization concepts
. Implementation of position based authorization concept for HR
Conception, development and implementation of structural authorization
profiles with context-sensitive security for HR Master Data; creating
Users, Roles, Groups, work sets, I views for the EP 7.0 System
. Created roles for the training manager and administrator
. Created backend roles for HR Employer self-service ESS and Manager
self-service MSS
. Restricted HR roles as per the personnel area's using the Structural
Authorizations profiles
EDUCATION:
Masters of Computer Applications, Kakatiya University, India.
Sep 2002 - Aug 2005
Bachelor of Science (MPC) from Kakatiya University, India.
SAP Certified Technology Associate - SAP Authorization and Auditing for SAP
NetWeaver 7.31
TECHNOLOGIES:
SAP COMPONENTS SAP R/3 (4.6B, 4.6C, 4.7EE, ECC 5.0 ECC 6.0 Web AS
AND RELEASES : 6.20,6.40.7.0)
APO3.5, SRM 5.0/7.0, BOBJ 4.0,CRM 4.0,5.0,7.0, SCM
7.0
O/S: SOLUTION MANAGER 3.2- 4.0 / 7.0
NETWEAVER COMPONENTS : ENTERPRISE PORTAL 5.0
-6.0.7.0,
BI 7.0,XI, ADD-ON's : GRC 10.0/5.3, VIRSA 4.0
UNIX, WINDOWS,
ACTIVE DIRECTORY MANGEMENT.
References: Available upon request.
Contact this candidate